Senior DevOps Engineer

Experian is the world’s leading global information services company. During life’s big moments — from buying a home or a car to sending a child to college to growing a business by connecting with new customers — we empower consumers and our clients to manage their data with confidence. We help individuals to take financial control and access financial services, businesses to make smarter decisions and thrive, lenders to lend more responsibly, and organizations to prevent identity fraud and crime.

We have 17,800 people operating across 44 countries, and every day we’re investing in new technologies, talented people and innovation to help all our clients maximize every opportunity. We are listed on the London Stock Exchange (EXPN) and are a constituent of the FTSE 100 Index.

Learn more at www.experianplc.com or visit our global content hub at our global news blog for the latest news and insights from the Group

Experian is the world’s leading global information services company. During life’s big moments — from buying a home or a car to sending a child to college to growing a business by connecting with new customers — we empower consumers and our clients to manage their data with confidence. We help individuals to take financial control and access financial services, businesses to make smarter decisions and thrive, lenders to lend more responsibly, and organizations to prevent identity fraud and crime.

We have 17,800 people operating across 44 countries, and every day we’re investing in new technologies, talented people and innovation to help all our clients maximize every opportunity. We are listed on the London Stock Exchange (EXPN) and are a constituent of the FTSE 100 Index.

Learn more at www.experianplc.com or visit our global content hub at our global news blog for the latest news and insights from the Group

The DevSecOps Senior Engineer is a hands-on technical position responsible for operating a diverse set of cloud security controls and monitoring processes. This role will work directly with security architecture teams to improve security posture and automation capabilities:

• As a s DevSecOps Senior Engineer proactively implement fresh ideas to continuously improve the security of our e-commerce products
• Comply with a range of security and regulatory requirements (internal and external)
• Respond to audit requests and requirements.
• Manage cloud security tools such as WAF, IDS/IPS, Anti-Virus, Integrity monitoring, vulnerability scanning and cloud security/compliance monitoring frameworks.

• Implement and manage internal endpoints and VPC Firewalls to enhance security boundaries.
• Add and configure Security Groups in AWS for different applications and environments.
• Manage Role-Based Access Control (RBAC) and Identity Access Management (IAM) within the AWS cloud.
• Create, audit, and maintain policies and entitlements to ensure secure access to AWS services.
• Use AWS and third-party deployment tools for automation of security configurations.
• Set up Infrastructure Guardrails using AWS Service Control Policies (SCPs).
• Manage AMI Factory for automated image creation and validation.
• Implement and manage serverless policies and deployments in AWS.
• Operate and manage network traffic flow, NACLs, transit gateways, Peers, direct connect, and Security groups.
• Assess infrastructure and application vulnerabilities and take remediation actions as appropriate.
• Operate and manage AWS IAM permissions based on defined roles and responsibilities.
• Ensure tight security for an eCommerce platform including data encryption, security groups, environment scanning, etc.
• Experience with API Security, Container Security (Runtime detection, Runtime blocking and building or modifying policies) is preferred.
• Build pipeline supporting Continuous Delivery, and SDLC Security tools, including support for canary and blue green releases.
• Manage Linux-based operating systems and associated vulnerability management processes.
• Collaborate with information security, DevOps, and engineering teams to identify Platform needs and issues with respect to security.
• Collaborate with key third-party security partners to ensure that security controls adhere to defined policies and mitigate risks.
• Perform advanced security technical troubleshooting for cloud and e-commerce environments.
• Lead projects from start to finish and be the go-to technical person for that initiative.
• Administer Linux OS vulnerability management to ensure systems are patched and secure.
• Manage container vulnerability, applying patches and updates as required.
• Enable system monitoring and logging using AWS and third-party tools.

• Partner with Experian Global Security office to ensure policies and standards are being properly applied.

The current Platform has been implemented primarily as “infrastructure as code”, so experience with Python, or equivalent experience with other scripting or infra-coding tools is essential. The Platform is being managed as a true software product (story backlog, product roadmap, developer involvement in product direction), so Agile Product Oriented Development experience is also important.

Responsibilities:

• Collaborate with information security, DevOps and engineering teams to identify Platform needs and issues with respect to security
• Collaborate with key third-party security partners to ensure that security controls adhere to defined policies and mitigate risks.
• Ability to manage projects as a technical lead to ensure project initiatives are completed on time and in scope.
• Daily operational security controls and monitoring.
• Author Agile stories, estimate story points, assist with sprint planning and retrospectives
• Perform advanced security technical troubleshooting for cloud and e-commerce environments
• Participate in incident response exercises and continue documenting security and incident response procedures.

Education and Experience:

• 5+ years of experience in Information Security, and/or Ops or DevOps role, focused on automated solutions supporting security
• Security certifications such as CISSP, CCSP, GIAC Certified Intrusion Analyst (GCIA), GIAC Certified Incident Handler (GCIH) are a plus
• Fluency in Python or other programming or scripting languages
• Production experience with public cloud (AWS, Google or Azure – AWS strongly preferred)
• Experience with a variety of open source technologies and tools in support of cross-team collaboration
• Bachelor of Science or comparable experience

Qualifications Required:

• Knowledge of the InfoSec/DevOps tools chain focused on the AWS Linux platform
• Experience deploying automation solutions in a public cloud environment such as AWS
• Knowledge of PCI/HIPPA and other security related standards and requirements
• Experience supporting security audits
• Operationally savvy, experience with monitoring, alerting, and analyzing system metrics to identify problems and understanding system behavior specific to security concerns
• Ability to work in a fast paced, e-commerce environment
• Strong communication and collaboration skills
• Strong problem-solving skills
• A passion for security and innovation
• Collaboration, drive open communication and reach across functional borders

Experian Careers - Creating a better tomorrow together

Find out what its like to work for Experian by clicking here